At past EC-Council Foundation Global CISO Forums and CISO Summits, panels of information security executives have discussed the debate in the industry regarding the proper hierarchical placement of the CISO. The debate is typically framed as being a choice between the CISO reporting to the CIO or to the CEO. CIO.com recently published an article outlining the argument for the CISO to report to the CEO.
Click below to read the full article, but one of the key points the article mentions is that “organizations where the CISO reports to the CIO have financial losses that are 46% higher, according to research by PwC.”
Case closed? Click here for the full article.